Professional Documents
Culture Documents
SA&I
1 2/21/2017
1
Notices and disclaimers
Copyright © 2017 by International Business Machines Corporation (IBM). as illustrations of how those customers have used IBM products and
No part of this document may be reproduced or transmitted in any form the results they may have achieved. Actual performance, cost, savings or other
without written permission from IBM. results in other operating environments may vary.
U.S. Government Users Restricted Rights — use, duplication or disclosure References in this document to IBM products, programs, or services does not
restricted by GSA ADP Schedule Contract with IBM. imply that IBM intends to make such products, programs or services available in
all countries in which IBM operates or does business.
Information in these presentations (including information relating to products
that have not yet been announced by IBM) has been reviewed for accuracy as Workshops, sessions and associated materials may have been prepared by
of the date of initial publication and could include unintentional technical or independent session speakers, and do not necessarily reflect the
typographical errors. IBM shall have no responsibility to update this views of IBM. All materials and discussions are provided for informational
information. This document is distributed “as is” without any warranty, either purposes only, and are neither intended to, nor shall constitute legal or other
express or implied. In no event shall IBM be liable for any damage arising guidance or advice to any individual participant or their specific situation.
from the use of this information, including but not limited to, loss of data,
business interruption, loss of profit or loss of opportunity. IBM products and It is the customer’s responsibility to insure its own compliance with legal
services are warranted according to the terms and conditions of the requirements and to obtain advice of competent legal counsel as to
agreements under which they are provided. the identification and interpretation of any relevant laws and regulatory
requirements that may affect the customer’s business and any actions
IBM products are manufactured from new parts or new and used parts. the customer may need to take to comply with such laws. IBM does not
In some cases, a product may not be new and may have been previously provide legal advice or represent or warrant that its services or products will
installed. Regardless, our warranty terms apply.” ensure that the customer is in compliance with any law.
2
Notices and disclaimers continued
Information concerning non-IBM products was obtained from the suppliers of FASP®, FileNet®, Global Business Services®,
those products, their published announcements or other publicly available Global Technology Services®, IBM ExperienceOne™, IBM SmartCloud®, IBM
sources. IBM has not tested those products in connection with this publication Social Business®, Information on Demand, ILOG, Maximo®,
and cannot confirm the accuracy of performance, compatibility or any other MQIntegrator®, MQSeries®, Netcool®, OMEGAMON, OpenPower,
claims related to non-IBM products. Questions on the capabilities of non-IBM PureAnalytics™, PureApplication®, pureCluster™, PureCoverage®, PureData®,
products should be addressed to the suppliers of those products. IBM does not PureExperience®, PureFlex®, pureQuery®, pureScale®, PureSystems®, QRadar®,
warrant the quality of any third-party products, or the ability of any such third- Rational®, Rhapsody®, Smarter Commerce®, SoDA, SPSS, Sterling Commerce®,
party products to interoperate with IBM’s products. IBM expressly disclaims all StoredIQ, Tealeaf®, Tivoli® Trusteer®, Unica®, urban{code}®, Watson, WebSphere®,
warranties, expressed or implied, including but not limited to, the implied Worklight®, X-Force® and System z® Z/OS, are trademarks of International
warranties of merchantability and fitness for a particular, purpose. Business Machines Corporation, registered in many jurisdictions worldwide.
Other product and service names might be trademarks of IBM or other
The provision of the information contained herein is not intended to, and does companies. A current list of IBM trademarks is available on the Web at
not, grant any right or license under any IBM patents, copyrights, trademarks or "Copyright and trademark information" at:
other intellectual property right. www.ibm.com/legal/copytrade.shtml.
IBM, the IBM logo, ibm.com, Aspera®, Bluemix, Blueworks Live, CICS, Clearcase,
Cognos®, DOORS®, Emptoris®, Enterprise Document Management System™,
3
Digital Transformation
Vincent O’Dwyer
Bank of Ireland Group
Agenda
SA&I
4 2/21/2017
4
Temenos Partnership
Agenda
SA&I 55
Agenda
Customers are
immersed in a digital
marketplace
SA&I 6
We are living in a Digital Marketplace
Agenda
SA&I 77
Building our digital bank
Partnership
Agenda
enabled through
API’s
Straight through
Omni-channel Single view of
processing in real
self service customer
time
SA&I 88
Omega will bring stability, cost efficiency and agility
Agenda
Stability Cost & Efficiency Growth Opportunities
SA&I 99
Omega will release a new era of customer proposition
development, personalisation and relevance
SA&I 10
10
The Plan …
Agenda
SA&I 11
11
Agenda
SA&I 12
12
Agenda
SA&I 13
13
Agenda
SA&I 14
14
Agenda
SA&I 15
Agenda
SA&I 16
16
The Plan …
2016 2017 2018
Release A & Operational Single May – Release B Nov – Customer
CORE OMEGA PROJECT & BUSINESS CView
HANGEof Customer Go-Live BUSINESS ONBOARDNG
Migration&
Complete
OP MODEL
HIGH LEVEL IMPACT
DESIGN PROCESS BUSINESS READINESS CUSTOMER
ASSESSMENT
MAPPING FRIENDS & MIGRATION
FAMILY
TRAINING CONTENT TRAINING LOGISTICS New Customers Migrated Customers
& PREP
QUICK WIN PRODUCT & FEATURE Customers in Scope
RATIONALISATION PRE-MIGRATION PRODUCT & FEATURE Consumer SB&A
SIMPLIFICATION
Products in Scope
Current Credit Unsecured
Deposits
A/C Cards Loans
CO-EXISTENCE
CUSTOMER COMMUNICATIONS
Legacy System
Decommissioning
SA&I
Customers Centric Processes Sales Reliability for Change
17
Technology Journey
Neil Toussaint
IBM
Agenda
SA&I
18 2/21/2017
18
Omega Vision
CUSTOMER, PRODUCT & INFRASTRUCTURE DRIVERS
Digital First
Customer focused, simple straight through processing, omni-channel, focus on
customer self-service, single view of customer
Digital Infrastructure
Usable & Secure Omni Channel Connected Information Round Trip Processing Intelligent Business Customer Driven Partner Integration
Ensuring customer and The ability to support, Provide and analyse a Straight through Use data to drive Knowing the customer Working with 3rd parties
bank security wrapped in track and present single view of customer processing in real time decisions and present and peer groups to within a broader digital
a proactive , educational consistent customer (from multiple sources) with no rework – start, simulations, ‘warnings’ present insights, product ecosystem to add
and enhancing way journeys across all through all journeys pause and pick up in any and ‘advice’ bundles and rewards extendable and adjacent
channels channel offers
Stability and Integration Ease of Change Reduced Costs A new Bank Digital Eco System
Modern stack with fewer Single solution set, meeting Reduction in change costs and Achieves a new Bank with leading Bank can become a leading
components supporting ‘always capabilities required, meaning ongoing run costs capability participant in wider digital
on’ seamless proposition more configuration - Lean, analytical, agile and journeys, presenting internal and
competitive external value
Basic Advanced
19
Radical simplification
EVOLUTION OF THE LANDSCAPE
• Reducing application portfolio across the Group supports cost reduction objectives
• Exploit transformation opportunity to accelerate introduction of “next generation” infrastructure services
20
Core Infrastructure Design Principles
TRANSLATING PROGRAMME AND BUSINESS OBJECTIVES TO SUPPORTING INFRASTRUCTURE
Description Rationale
Establish Omega as a greenfield solution with distinct Protect current production services
infrastructure platform able to support critical business services Avoid inheriting constraints of legacy infrastructure platform
running active-active in two data centres Support business availability requirements of future digital Bank
Ease coexistence and migration
Supports business service levels
Enable application stacks to be maintained at the most recent Reduce TCO, support sustainable security and compliance obligations,
robust release levels and allow patch / upgrade with minimal position Bank to exploit new technology features
impact and effort
Adopt preferred (Bank 's strategic stack and vendor preferred) Standardise to reduce cost, leverage automation and reduce complexity
application stacks throughout the lifecycle
Achieve consistency throughout environment levels from Ensure fidelity of test and production outcomes, improve robustness and
development environments through to production stability of production, leverage automation
Minimise ‘lock in’ to one infrastructure provider or vendor Enable portability, satisfy regulatory requirements
Enable “Cloud” as a deployment option TCO optimisation, enable business competitiveness, position Bank to
exploit Cloud economics and capabilities
Automate activities that are repetitive Reduce TCO, achieve predictable, repeatable outcomes, increase agility
21
Infrastructure Strategy and the Challenges
TAKING DESIGN PRINCIPLES AND SETTING THE INFRASTRUCTURE STRATEGY
• Industry proven package applications – focus on the business of financial services, business innovation and customer
experience
• On-premise processing / storing sensitive personal customer and commercially sensitive business data
• Off-premise development and test – exploit economics of Cloud for variable workload, support business agility
• Follow “born on the cloud” design principles for application and infrastructure where possible
– Aspect of business application product selection criteria
– Have characteristics to support horizontal scaling, tolerance of component failure, supports continuous operation, runs on diverse
cloud provider platforms
– Position hybrid cloud as a future deployment option for suitable workloads e.g. burst capacity, HPC
• Adopt DevOps – reduce friction of change, improve business agility, automate
• Software Defined Environment (SDE) – support DevOps as infrastructure can be manipulated by code
• Virtualise infrastructure where possible – underpins SDE, key cloud attribute, support portability requirement, manage
every exception (e.g. workload dependency on physical stack)
• Define limited number of standard open platform stacks to cover Omega application portfolio – drive standardisation,
reduce TCO, maximise opportunity for automation, reduce currency challenge
THE CHALLENGES
• Fidelity in a Hybrid Cloud deployment pattern
– Given day one position of Dev and Test in Cloud off-premise and Prod and Preprod on-premise, how ensure what is tested works in
production
• DevOps and Service Orchestration
– Regulated, business critical managed service requires more than automated provisioning and configuration but extends to ITIL
processes too
• Service Automation and Analytics for Enterprise IT
– How to apply existing estate optimisation in service automation and analytics to the Green Field and the end to end service
– How access high value cloud based capabilities as they become available - what is the enterprise architecture roadmap
22
Architecture Overview
INFRASTRUCTURE AND THE VIRTUALISATION STRATEGY
T24
T24
T24 T24 Load
Load Balancer
Balancer T24
T24
T24 T24
Mobile Internal Mobile Internal
Internet
Internet Internet
Internet
Banking Browser Banking Browser
Banking
Banking Banking
Banking
T24 T24
Core Banking Applications Core Banking Applications
HID (ID Management) EFS Autoform (Document Mgmt) Mulesoft (Integration) HID (ID Management) EFS Autoform (Document Mgmt) Mulesoft (Integration)
Document
Document ESB
ESB Document
Document ESB
ESB
HID Bulk
Bulk HID Bulk
Bulk
Management
Management Integration
Integration Management
Management Integration
Integration
ActiveID Print
Print ActiveID Print
Print
Archive
Archive Services
Services Archive
Archive Services
Services
DWDN
NetReveal (anti-fraud) NetReveal (anti-fraud)
EAST ESX Cluster EAST ESX Cluster EAST ESX Cluster EAST ESX Cluster EAST ESX Cluster EAST ESX Cluster
EAST ESX Cluster Omega Tooling Network Edge Infrastructure Mgmt EAST ESX Cluster Omega Tooling Network Edge Infrastructure Mgmt
Pre-Production Compute N+1 redundancy N+1 redundancy N+1 redundancy Pre-Production Compute N+1 redundancy N+1 redundancy N+1 redundancy
N+2 redundancy N+2 redundancy
SQL
SQL Server
Server SQL
SQL Server
Server
Oracle
Oracle RAC
RAC Oracle
Oracle RAC
RAC
SAN SAN
23
Fidelity in a Hybrid Cloud deployment pattern
Fidelity in a Hybrid Cloud deployment pattern DevOps and Service Orchestration
Service Automation and Analytics for Enterprise IT
ACHIEVING CONSISTENCY THROUGHOUT ENVIRONMENT LEVELS FROM DEVELOPMENT THROUGH TO PRODUCTION
Problem
• Dev/Test off premise on IBM Bluemix
• PreProd/Prod on premise based on dual data centre enterprise class managed network, compute, storage infrastructure
• Some technology differences: production vs Dev/Test
– Exadata vs. Oracle on bare metal
–
Collaborative Lifecycle Management
SVC fronted enterprise (XIV and Flash) vs. cloud storage Collaborative Lifecycle Management (CLM) provides defect tracking, user story
tracking, versions (milestones), projects and categories, provides dashboard
reporting, and is used extensively for planning and tracking the overall work.
– X3850 vs. cloud servers
– Networking equipment vs. Vyatta, F5 Virtual Edition Revision Control System Provisioning and Configuration System Artefact Management System Code Convergence Feedback Management
Dependency Repository
Solution Source Code
Management
Static Code
Analysis
Provisioning
Management
System Configuration &
Automation
Management Management System Configuration &
Automation
Test
Automation
Log Analysis &
Analytics
with VMWare Software Defined Data Centre1 Source code and its history stored in
tools that covers package
deployment, middleware Components that provide
•
automated build, Continuous Tools that automate provisioning and configuration revision control repository and feedback to developers, tech ops
•
VMWare Hypervisor
Infrastructure as a Service APIs decouple target API Layer
Nova Neutron Cinder Glance
VMWare APIs
Image
environment from code driving provisioning, Systems and
configuration and operation (enables DevOps) Service
Management
Compute Resources XXX Hypervisor Security and
Compliance
•
XXX
DevOps toolchain to automate build, test and Nova Neutron Cinder Glance Images Glance
vSphere
Images
1 http://www.vmware.com/solutions/software-defined-datacenter/in-depth.html
24
Fidelity in a Hybrid Cloud deployment pattern
DevOps, ITIL and Service Orchestration DevOps and Service Orchestration
Service Automation and Analytics for Enterprise IT
OBJECTIVES
• Reduce friction of change, increase frequency of and capacity for change; improve business agility
• Protect robustness of production operations and robust service management disciplines appropriate for regulated
financial services industry
DEVOPS
• Approach to facilitate application development and infrastructure operations working together
– To break down barriers, improve levels of collaboration between application and infrastructure organisations
– To facilitate agile development and delivery of applications
– To eliminate infrastructure as an inhibitor to business application development and deployment.
– Is an investment in the automation of development, testing and application and infrastructure deployment through which agility,
speed, repeatability and cost reduction is achieved. Enabled by a technology stack, DevOps tool chain.
• Comes with a toolchain but not just a technology or a product
ITIL1
• Set of practices for delivering and managing IT as a service to the business - supported by technology, run books, people
and organisations. The adoption of ITIL in the Bank is mature.
• “service orchestration” - the practical steps required to make a Configuration Item managed as part of Tools
TRAILS
a committed service level agreement is a complex process involving multiple organisations and tools BRAT / BODD
BRAVO
CNDB
LA - DACMT
Asset Management Hardware Asset Tracking GAM DB
LA - HART
Software Asset Tracking
MLDB
Product Acquisition Order Processing (OP)
Hardware Financial Management OrderNow!
SARGE
Change management Logistics Support Sherlock
Service transition Service asset and configuration management Inventory Capture SOADB
SWCM
Release and deployment management Software License Management SwKBT (AM instance)
TAJAMT
SESDR - Single EMEA Server Data Repository
Configuration Management Configuration Management Discovery Service Tivoli Asset Discovery for Z (TAD4Z)
Configuration Management Service TAD4D
1 https://www.itil.org.uk/index.htm Consolidated Asset and Configuration Data Service
Asset Management Tracking Tool (ATP)
25
Fidelity in a Hybrid Cloud deployment pattern
DevOps and ITIL DevOps and Service Orchestration
Service Automation and Analytics for Enterprise IT
COEXISTENCE, COMPATIBILITY BUT THINGS CHANGE
• ITIL and DevOps are not contradictory
Service Service Service Service Continual Service
ITIL
Strategy Design Transition Operation Improvement
App Development
DevOps App Management
Infrastructure Operations
Standard
• If infrastructure operations and ADM methods Service Operation
automated
and tooling change the inputs and approach to (Change Management)
ITIL practices also changes. Changes
• DevOps can support ITIL…
• Requires App, Infra and Service Automation to Service Automation
complete the picture App Automation
Infra Automation
26
Fidelity in a Hybrid Cloud deployment pattern
DevOps, Systems Management Tooling, App and Infra DevOps and Service Orchestration
Service Automation and Analytics for Enterprise IT
ANNOTATED USER STORIES SHOWING INTERACTION BETWEEN THESE COMPONENTS
User Story Steps • Mapping the user stories over application, infrastructure and security
Zero day / critical security 1 Identify potentially vulnerable CIs and systems management reveals gaps in ability to orchestrate managed
patch 2 raise change
3 acquire and package code
service of CIs. Service Automation comprises manual steps (in grey) not
n 4 validate prereqs
5 distribute code
and complete impact assessment against related CIs covered by tool chain. Need to be added to automation programme to
6 secondary controls / reporting to prove compliance (patches applied to policy) achieve target end state.
Medium complexity 1 project and tasks, code created inc. artefacts, pipeline, test scripts etc Digital Channels
infrastructure change 2 change control
(rebuild of software defined 3 change implemented via pipeline 3rd Parties /
component) 4 physical infra prereqs completed (if required) Mobile Web Bank
Direct Integration
5 deploy image, including all agents, from new master image
6 configure systems management agents
n 7 configure DevOps toolchain agents and IF service management
8 secondary controls / reporting to prove compliance
9 service management tasks completed (inc. CI updates to CMDB if required) Application
Monitoring
Key Systems Management Continuous Scripts
Established capability – significantly automated Banking and supporting Applications
Integration Dashboard
Significant manual intervention required without Config Mgmt T24, Mule,GPP
Agents
investment Project / Task Alerting
Mgmt Package Mgmt Virtualisation / Abstraction / Containers
Log Diagnostics
... (Openstack, Docker, Software Defined compute, Security and
...
Backup & Recovery storage, network...) ... Compliance
... ...
5 7 ...
1 Automated 3 4 Agents
Application Provisioning DevOps Monitoring
Patch Mgmt 3 Infrastructure
Lifecycle ... and Service
4 Management
Management
Systems
DevOps Performance and Events
Management Capacity Mgmt
6 5 6 8
Application Security ... SIEM
... Event Reduction Monitoring and Event Management Event Correlation
Event Action Mgmt V Scanning
Infrastructure … = sub-components
...
n Zero
Zero day
day // critical
critical security
security patch
patch Automation ...
KPI Mgmt 2 IPC 9 2 ... 1 4 CMDB 9
Dynamic
Dynamic
Medium
Medium complexity
complexity infrastructure
infrastructure IT Analytics Service Management
n change ... Robotic
Robotic
change (rebuild
(rebuild ofof software
software defined
defined Reporting Service Request
component)
component)
27
Fidelity in a Hybrid Cloud deployment pattern
Evolving DevOps to Embrace Service Automation DevOps and Service Orchestration
Service Automation and Analytics for Enterprise IT
EXTEND ROLE OF DEVOPS TOOLCHAIN, INCREASE SCOPE OF AUTOMATION TO COVER SERVICE ORCHESTRATION
Application Dev, Build, Test, Deploy,
Operations
• Reduce manual activities
• Extend scope of DevOps toolchain (predominantly in app domain)
• Exploit and extend IBM’s enhanced automation and analytics suite
Infrastructure Build, Manual
(predominantly in infra domain)
Configure
Design DevOps toolchain
(App, Infra, Service) Application Dev, Build, Test, Deploy, Operations
IBM [Enhanced] Reduce through re-use and adoption of standards
Automation Suite Extend role and scope of DevOps
Automated Service
Management
ITIL Service
management
Infrastructure Infrastructure Build, Configure
Operations Reduce through re-use and adoption of standards
DevOps Toolchain Extend role and scope of DevOps
IBM Automation
Manual Design
(App, Infra, Service)
Manual
Service Service Service Service Continual Service
ITIL
Reduce through re-use and
Strategy Design Transition Operation Improvement adoption of standards
DevOps toolchain
App Dev, Build, Test, Deploy
App Operations ITIL Service management
DevOps IBM [Enhanced]
Infrastructure Operations Extend role of Automation
Automation Suite
Infrastructure Build, Configure
Automated Service Management
Infrastructure Operations
Extend to embrace service orchestration
Extend role and scope of DevOps and
Integrate analytics and cognitive with automation
integrate automation capabilities
28
Fidelity in a Hybrid Cloud deployment pattern
Architecture of Analytics and Enhance Service Automation DevOps and Service Orchestration
Service Automation and Analytics for Enterprise IT
OPEN, EXTENSIBLE ANALYTICS AND AUTOMATION ARCHITECTURE CAN AUGMENT DEVOPS
• IT Analytics and the Enhanced Service Automation Suite can operate with or without DevOps.
• Without
– Instrumentation flows from service and systems management to IT Analytics
– Automation drives infrastructure / virtualisation via scripts / APIs as required but coordinated with and by Service Management
• With Digital Channels
– Instrumentation data flows in addition from DevOps toolchain 3rd Parties /
– Service led automation can drive DevOps toolchain Mobile Web Bank
Direct Integration
Application
Monitoring
Systems Management Continuous Scripts Banking and supporting Applications
Integration Dashboard
Config Mgmt T24, Mule,GPP
Agents
Project / Task Alerting
Mgmt Package Mgmt Virtualisation / Abstraction / Containers
Log Diagnostics
... (Openstack, Docker, Software Defined compute, Security and
...
Backup & Recovery storage, network...) ... Compliance
... ...
...
Automated
Application Provisioning Agents DevOps Monitoring
Patch Mgmt Infrastructure
Lifecycle ... and Service
Management Management
Performance and Events
Capacity Mgmt
... SIEM
...
Event Reduction Event Action Mgmt Monitoring and Event Management Event Correlation V Scanning
...
Automation ...
KPI Mgmt IPC ... CMDB Dynamic
Dynamic
IT Analytics Service Management
... Robotic
Robotic
Reporting Service Request
29
Fidelity in a Hybrid Cloud deployment pattern
Early Adoption of Service Automation and IT Analytics DevOps and Service Orchestration
Service Automation and Analytics for Enterprise IT
OBJECTIVE: OPTIMISATION IN SERVICE AUTOMATION AND ANALYTICS TO END TO END SERVICE MANAGEMENT OF THE GREEN FIELD
• Automate repetitive activities
• Leverage investment in Analytics for the Business of IT
Server NOT in compliance
Today
FTP Enabled during Password Expiry changed Security Settings Next Health Check:
Major Incident during a patch Modified by user “Compliant”
Continuous Compliance started
Exploited Enabled
Digital Business
Leveraging IT services via Customer-facing Solutions Business Partner Solutions Workforce Enablement Solutions
integrated APIs Unified view and
method of accessing
standard services
Service catalogue APIs
Unified view of services and
Maturity
Analytics aaS Mobility aaS Automation DevOps aaS Vendor aaS Vendor App Client App
of Transformation
Infrastructure orchestration
augmented with Cognitive
Computing to improve
ITaaS Platform *aaS Fulfillment and Management Integration Platform productivity, quality and
& Hybrid Cloud Platform
consistency.
Infrastructure Analytics Cognitive Automation DevOps
A robust, flexible platform and
infrastructure
built on standardised architecture Infrastructure Platforms – Software Defined Environments (SDC, SDS, SDN)
Deployed as a software defined Software defined
environment that simplifies environments & Platforms
hybrid cloud implementation and IBM Cloud
management Traditional On-premises IT On-premises Private Public Vendor Public Cloud support Devops, hybrid
Optimised through advanced Client-based Private Cloud SoftLayer (IaaS) e.g. AWS, Azure, Etc.
analytics, automation and Client-based and automation and
cognitive technologies Bluemix (PaaS)
Et al enable IT elasticity and
infrastructure optimisation
31
Conclusions
THE JOURNEY SO FAR
• Virtualisation and API enabled software defined infrastructure architecture
– Underpins “cloud as a deployment option” and support hybrid IT
– Enabler for DevOps
– Facilitate fidelity despite hybrid deployment model
– Patterns, technology and capabilities well established
• DevOps and Service Orchestration
– Enabled by software defined infrastructure
– Mature and well proven in app domain
– Service orchestration needs work
• Service Automation and Analytics for Enterprise IT
– Too important not to embed
– Architecture supports integration of automation and analytics
– Bolting on straightforward but needs to be “joined up” with DevOps
32
Backup
Agenda
SA&I
33 2/21/2017
33
DevOps Toolchain Principal Components
34